SecScan SecScanSecurity Scanner for Linux
  • Tools
    • Site Tools
    • Recent Changes
    • Media Manager
    • Sitemap
    • Page Tools
    • Show pagesource
    • Old revisions
    • Backlinks
    • Export to PDF
    • Back to top
  • Log In

  1. You are here
  2. CentOS 7
  3. 6 System Maintenance
  4. 6.2 User and Group Settings

centos7:6:2

  • Show pagesource
  • Old revisions
  • Backlinks
  • Export to PDF
  • Share on ...
  • Google+
  • Twitter
  • LinkedIn
  • Facebook
  • Pinterest
  • Telegram
Table of Contents
  • 6.2 User and Group Settings
      • List of content
      • Description

6.2 User and Group Settings

List of content

  • 6.2.1 Ensure password fields are not empty (Scored)
  • 6.2.2 Ensure no legacy "+" entries exist in /etc/passwd (Scored)
  • 6.2.3 Ensure no legacy "+" entries exist in /etc/shadow (Scored)
  • 6.2.4 Ensure no legacy "+" entries exist in /etc/group (Scored)
  • 6.2.5 Ensure root is the only UID 0 account (Scored)
  • 6.2.6 Ensure root PATH Integrity (Scored)
  • 6.2.7 Ensure all users' home directories exist (Scored)
  • 6.2.8 Ensure users' home directories permissions are 750 or more restrictive (Scored)
  • 6.2.9 Ensure users own their home directories (Scored)
  • 6.2.10 Ensure users' dot files are not group or world writable (Scored)
  • 6.2.11 Ensure no users have .forward files (Scored)
  • 6.2.12 Ensure no users have .netrc files (Scored)
  • 6.2.13 Ensure users' .netrc Files are not group or world accessible (Scored)
  • 6.2.14 Ensure no users have .rhosts files (Scored)
  • 6.2.15 Ensure all groups in /etc/passwd exist in /etc/group (Scored)
  • 6.2.16 Ensure no duplicate UIDs exist (Scored)
  • 6.2.17 Ensure no duplicate GIDs exist (Scored)
  • 6.2.18 Ensure no duplicate user names exist (Scored)
  • 6.2.19 Ensure no duplicate group names exist (Scored)

Description

This section provides guidance on securing aspects of the users and groups.

  • centos7/6/2.txt
  • Last modified: 2017/05/06 13:08
  • (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Built with Bootstrap 3 Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki